Received: by 2002:a05:6a10:8c0a:0:0:0:0 with SMTP id go10csp691206pxb;
        Wed, 27 Jan 2021 19:26:34 -0800 (PST)
X-Google-Smtp-Source: ABdhPJwgvvgTbuuuU57VVZUz7i8vvVxxT2lN/k90F5ks1UD6N3oL5CWwaMlXydFdGI5kBr9hz1oB
X-Received: by 2002:a17:906:7d4d:: with SMTP id l13mr254303ejp.107.1611804394496;
        Wed, 27 Jan 2021 19:26:34 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; t=1611804394; cv=none;
        d=google.com; s=arc-20160816;
        b=v5FgJbB8KabObtdChkH3yo7zt6zw+ip4jHK1wR2qSOAFqeD/x42tJMSBE4fsViExU1
         /de1Kb6XcI3Ya6Ue8twf4qUK4ecOKzSZyljUYid7DHd3iThPuxrcuiFtfT0bgqY0GZKz
         enMP485XCfyz8RTInMVocemw3NlW8Zj22m1p38hXsL7SEWwhRVMRFeLLXMRRva2CX7Qb
         gIBRN1kueXh41vTnGl4s+sP9f5WzJCe1IRfBifs8tYMdzZ5Bl92Lh/lAkvtgheOwWXES
         UiT73jejHxvzv1EKRNzpI23+Y1CYniJGbVfi7EyURM0+ofR4K2lf4iUVW0Ug2QtLXIiZ
         qteQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:cc:to:subject:message-id:date:from:in-reply-to
         :references:mime-version:dkim-signature;
        bh=VOvuR1EHL3auJ3254YzQ2GupogQhN9qNF4C9zwM9XhI=;
        b=j1Ssn4EdCy7JZRju7Gv5NqnhfuMz3e+5YYKI6zMaSqfHwIHQWFgN2Cu8cPQpdNWW0Z
         PxigmYSV2Lx8A9posCydGlVUUVUa3smqbwjaxp55n9GgjU/5+5c2sdw4xkdQYhFkSQZA
         FFj+Z9OUaqNsYqT6td+42rbLuBkKXrC6RG1/oi6UyE0BVAt0ErQ3VWegbtMMYmKLuBFf
         D6eUStYL2WX6AT7lIO4LQg9XQTwEEijIGa405quttsPTdST044cgNptn68CEjcSvnueq
         QXwK5k7v5G2oUa2Ow7ohvbQ9/f1YUgAkdZRIAzc6Vu2oUEPx4zSD0h6eNCmxGXIqA2HC
         mukw==
ARC-Authentication-Results: i=1; mx.google.com;
       dkim=pass header.i=@paul-moore-com.20150623.gappssmtp.com header.s=20150623 header.b=YhhAxygf;
       spf=pass (google.com: domain of selinux-refpolicy-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=selinux-refpolicy-owner@vger.kernel.org
Return-Path: <selinux-refpolicy-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18])
        by mx.google.com with ESMTP id u7si2034388edx.172.2021.01.27.19.26.28;
        Wed, 27 Jan 2021 19:26:34 -0800 (PST)
Received-SPF: pass (google.com: domain of selinux-refpolicy-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18;
Authentication-Results: mx.google.com;
       dkim=pass header.i=@paul-moore-com.20150623.gappssmtp.com header.s=20150623 header.b=YhhAxygf;
       spf=pass (google.com: domain of selinux-refpolicy-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=selinux-refpolicy-owner@vger.kernel.org
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S229545AbhA1D0M (ORCPT <rfc822;linux.lists.archive@gmail.com>
        + 16 others); Wed, 27 Jan 2021 22:26:12 -0500
Received: from lindbergh.monkeyblade.net ([23.128.96.19]:41966 "EHLO
        lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S229551AbhA1D0K (ORCPT
        <rfc822;selinux-refpolicy@vger.kernel.org>);
        Wed, 27 Jan 2021 22:26:10 -0500
Received: from mail-ed1-x533.google.com (mail-ed1-x533.google.com [IPv6:2a00:1450:4864:20::533])
        by lindbergh.monkeyblade.net (Postfix) with ESMTPS id E5793C061574
        for <selinux-refpolicy@vger.kernel.org>; Wed, 27 Jan 2021 19:25:29 -0800 (PST)
Received: by mail-ed1-x533.google.com with SMTP id g1so4964801edu.4
        for <selinux-refpolicy@vger.kernel.org>; Wed, 27 Jan 2021 19:25:29 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=paul-moore-com.20150623.gappssmtp.com; s=20150623;
        h=mime-version:references:in-reply-to:from:date:message-id:subject:to
         :cc;
        bh=VOvuR1EHL3auJ3254YzQ2GupogQhN9qNF4C9zwM9XhI=;
        b=YhhAxygfhvXS5qmo5lVn0nDZzFr4LcEAtYfjJhQs6W6zmeEz73naszBXD2CZSAEVBR
         sIcOK4Iebzy7qoat4OEW3VRfUCE52BoDOw4ThYMU/RfAZvtKWTs5U5VZ+SuqnkmFIfRN
         m1utqZWxXQFcCija59PN75ks3k4m7OnXffB1Q7i4bIGZRjQ20XfMXMHKFrshXok6l/T7
         raSLuLRd4vLU7c29CUsp7SEkcV7ngLVu48lnhc5UDDZKsylOnQHYzPsCe3wY6Y0BK7/p
         jzHy0BjyA9AKiMedcHMO24P1E+Tg+AwRqCY0gg7djROoWn6Pmb0HHgHg6KEx0EojJPHx
         kzRg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20161025;
        h=x-gm-message-state:mime-version:references:in-reply-to:from:date
         :message-id:subject:to:cc;
        bh=VOvuR1EHL3auJ3254YzQ2GupogQhN9qNF4C9zwM9XhI=;
        b=cZOs4BNdAXFG93YYI6BunhdmpYmvV9ZuylyMr9rHVu6zDnIfQFDN+nnQtWicD0BjXV
         byHcbpSygM/53U4aEQyZce2ubOhlEVgS/z8RiKnWFNJ5bYZbfI1VQb57GW/eTPjbVO1W
         sOKzBaQ0UMZ1G5kotJltsYKUihqdL7IWCRQ9BnIDms2UMdXtf4cukwzrjpv91pwAWwkg
         aszZye7cr1Ie5EvPtMQfuhymWZdLekBNEpMZ4J2OaEzdd95dq+4HknsObhgOIldvb+iV
         lEvlZX9ccWchb/vdz8CmmkpAKgWiQJESMzaGmaMwS31c/zq3uF9WjnJrYTQWLpY9WImq
         QpMw==
X-Gm-Message-State: AOAM530oElM1pEcg43cc+/6PIDxzhqQetgnbOZIzuXW1OCrB/BvXxqRs
        O+O7HvagpHjoNEU5636G3SupCtQIYXJXEvIIPUDC
X-Received: by 2002:a05:6402:34e:: with SMTP id r14mr12109648edw.269.1611804328580;
 Wed, 27 Jan 2021 19:25:28 -0800 (PST)
MIME-Version: 1.0
References: <20210127153303.135235-1-richard_c_haines@btinternet.com>
In-Reply-To: <20210127153303.135235-1-richard_c_haines@btinternet.com>
From:   Paul Moore <paul@paul-moore.com>
Date:   Wed, 27 Jan 2021 22:25:17 -0500
Message-ID: <CAHC9VhSkuL2eUaBQYQBHEmy3OPP+vSmEVT9Eh0PTx8t4DZ5nJA@mail.gmail.com>
Subject: Re: [PATCH] selinux-notebook: Add new section for Embedded Systems
To:     Richard Haines <richard_c_haines@btinternet.com>
Cc:     selinux@vger.kernel.org, selinux-refpolicy@vger.kernel.org
Content-Type: text/plain; charset="UTF-8"
Precedence: bulk
List-ID: <selinux-refpolicy.vger.kernel.org>
X-Mailing-List: selinux-refpolicy@vger.kernel.org

On Wed, Jan 27, 2021 at 10:33 AM Richard Haines
<richard_c_haines@btinternet.com> wrote:
>
> Add a new section and supporting examples for embedded systems.
>
> Signed-off-by: Richard Haines <richard_c_haines@btinternet.com>
> ---
> Changes from RFC version: Added comments from Dominick, minor text updates
> and rework example Makefiles.
>
>  src/embedded_systems.md                       | 546 ++++++++++++++++++
>  src/implementing_seaware_apps.md              |   2 +-
>  .../embedded-policy/android-policy/README.md  |  34 ++
>  .../android-policy/android-10/Makefile        |  42 ++
>  .../android-policy/android-4/Makefile         |  31 +
>  .../android-policy/brillo-device/Makefile     |  46 ++
>  .../android-policy/brillo/Makefile            |  38 ++
>  .../reference-policy/README.md                |   6 +
>  .../reference-policy/build.conf               |  84 +++
>  .../reference-policy/modules.conf             | 236 ++++++++
>  src/seandroid.md                              |  12 +-
>  src/section_list.txt                          |   1 +
>  src/toc.md                                    |   1 +
>  13 files changed, 1074 insertions(+), 5 deletions(-)
>  create mode 100644 src/embedded_systems.md
>  create mode 100644 src/notebook-examples/embedded-policy/android-policy/README.md
>  create mode 100644 src/notebook-examples/embedded-policy/android-policy/android-10/Makefile
>  create mode 100644 src/notebook-examples/embedded-policy/android-policy/android-4/Makefile
>  create mode 100644 src/notebook-examples/embedded-policy/android-policy/brillo-device/Makefile
>  create mode 100644 src/notebook-examples/embedded-policy/android-policy/brillo/Makefile
>  create mode 100644 src/notebook-examples/embedded-policy/reference-policy/README.md
>  create mode 100644 src/notebook-examples/embedded-policy/reference-policy/build.conf
>  create mode 100644 src/notebook-examples/embedded-policy/reference-policy/modules.conf

This is great guys - thank you!

-- 
paul moore
www.paul-moore.com